CVE-2022-36370
Description
Improper authentication in BIOS firmware for some Intel(R) NUC Boards and Intel(R) NUC Kits before version MYi30060 may allow a privileged user to potentially enable escalation of privilege via local access.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Improper authentication in BIOS firmware for Intel NUC Boards/Kits before MYi30060 allows local privilege escalation.
Vulnerability
An improper authentication vulnerability exists in the BIOS firmware for certain Intel NUC Boards and Intel NUC Kits prior to version MYi30060 [1]. This flaw occurs during authentication checks, potentially allowing a local privileged user to bypass security restrictions.
Exploitation
An attacker requires privileged local access to the system [1]. No additional user interaction or network access is needed, as the attack vector is local. The exploitation involves altering BIOS settings or injecting code during the boot process.
Impact
Successful exploitation enables escalation of privilege within the system [1]. The attacker gains elevated control, potentially compromising the confidentiality, integrity, or availability of the platform.
Mitigation
Intel has released BIOS firmware update version MYi30060 to address this vulnerability [1]. Users should apply the update as soon as possible. There are no known workarounds for unpatched versions.
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
3- Intel/NUC Boards and NUC Kitsdescription
- Range: < MYi30060
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.